Zpomalení počítače

[Ondra16]

Dobrý den, v poslední době mi počítač trochu blbne. Občas nespolupracuje, zamrzá víc než obvykle, někdy jede opravdu pomalu a jednou mi spadla i aktualizace Avastu. Nejspíše to nic nebude, chci se jen ujistitm že v tom nemá prsty nějáká havěť. Mám Windows Vista 32 bitů. Zde je log z RSIT, děkuji za kontrolu.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Sobolovi at 2010-08-16 11:29:52
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 102 GB (14%) free of 715 GB
Total RAM: 2558 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:29:55, on 16.8.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Avast4\ashDisp.exe
C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\NetLimiter 2 Monitor\NLClient.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Ondra\Staženo\RSIT.exe
C:\Program Files\trend micro\Sobolovi.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.volny.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\Windows\System32\dvmurl.dll
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Petr\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Avast4\ashWebSv.exe
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Inkjet Printer/Scanner Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: NetLimiter (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 5574 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-04 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-09-09 6281760]
"avast!"=C:\PROGRA~1\Avast4\ashDisp.exe [2009-11-25 81000]
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2008-02-29 76304]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"PC Suite Tray"=C:\Petr\Nokia PC Suite 7\PCSuite.exe [2010-05-14 1479680]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-08-16 11:29:52 ----D---- C:\rsit
2010-08-14 09:56:53 ----SHD---- C:\Config.Msi
2010-08-14 09:56:31 ----A---- C:\Windows\system32\javaws.exe
2010-08-14 09:56:31 ----A---- C:\Windows\system32\javaw.exe
2010-08-14 09:56:31 ----A---- C:\Windows\system32\java.exe
2010-08-12 08:16:26 ----A---- C:\Windows\system32\schannel.dll
2010-08-12 08:16:25 ----A---- C:\Windows\system32\iccvid.dll
2010-08-12 08:16:23 ----A---- C:\Windows\system32\mshtml.dll
2010-08-12 08:16:23 ----A---- C:\Windows\system32\iertutil.dll
2010-08-12 08:16:23 ----A---- C:\Windows\system32\ieframe.dll
2010-08-12 08:16:22 ----A---- C:\Windows\system32\urlmon.dll
2010-08-12 08:16:22 ----A---- C:\Windows\system32\msfeeds.dll
2010-08-12 08:16:22 ----A---- C:\Windows\system32\ie4uinit.exe
2010-08-12 08:16:21 ----A---- C:\Windows\system32\wininet.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\occache.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\mstime.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\msfeedssync.exe
2010-08-12 08:16:21 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\jsproxy.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\ieUnatt.exe
2010-08-12 08:16:21 ----A---- C:\Windows\system32\ieui.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\iesysprep.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\iesetup.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\iernonce.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\iepeers.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\iedkcs32.dll
2010-08-12 08:16:17 ----A---- C:\Windows\system32\win32k.sys
2010-08-12 08:16:13 ----A---- C:\Windows\system32\rtutils.dll
2010-08-12 08:16:05 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-08-12 08:16:05 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-08-12 08:16:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-08-12 08:16:03 ----A---- C:\Windows\system32\drivers\srv.sys
2010-08-12 08:16:02 ----A---- C:\Windows\system32\msxml3.dll
2010-08-12 08:15:59 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-08-08 10:30:19 ----A---- C:\Windows\system32\shell32.dll
2010-07-26 18:52:04 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2010-07-26 18:52:03 ----A---- C:\Windows\system32\WUDFx.dll
2010-07-26 18:52:03 ----A---- C:\Windows\system32\WUDFSvc.dll
2010-07-26 18:52:03 ----A---- C:\Windows\system32\WUDFPlatform.dll
2010-07-26 18:52:03 ----A---- C:\Windows\system32\WUDFHost.exe
2010-07-26 18:52:03 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2010-07-26 18:52:03 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2010-07-26 18:29:02 ----D---- C:\Program Files\Common Files\PCSuite
2010-07-26 18:28:57 ----D---- C:\Program Files\Common Files\Nokia
2010-07-26 18:28:09 ----D---- C:\Program Files\DIFX
2010-07-26 18:28:05 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2010-07-26 18:27:13 ----D---- C:\Program Files\PC Connectivity Solution

======List of files/folders modified in the last 1 months======

2010-08-16 11:29:55 ----D---- C:\Windows\Temp
2010-08-16 11:29:55 ----D---- C:\Windows\Prefetch
2010-08-16 11:29:54 ----D---- C:\Program Files\trend micro
2010-08-16 11:29:35 ----D---- C:\Users\Sobolovi\AppData\Roaming\Skype
2010-08-16 11:27:12 ----D---- C:\Users\Sobolovi\AppData\Roaming\uTorrent
2010-08-16 09:30:33 ----D---- C:\Windows\System32
2010-08-16 09:30:33 ----D---- C:\Windows\inf
2010-08-16 09:30:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-08-16 09:29:49 ----D---- C:\Users\Sobolovi\AppData\Roaming\skypePM
2010-08-15 11:16:59 ----SHD---- C:\System Volume Information
2010-08-14 23:00:43 ----D---- C:\Windows\system32\WDI
2010-08-14 10:27:46 ----D---- C:\Windows\Debug
2010-08-14 10:27:46 ----D---- C:\Windows
2010-08-14 09:56:53 ----SHD---- C:\Windows\Installer
2010-08-14 09:56:50 ----D---- C:\Program Files\Common Files
2010-08-14 09:56:29 ----D---- C:\Program Files\Java
2010-08-13 18:01:21 ----D---- C:\Windows\Microsoft.NET
2010-08-13 18:01:16 ----RSD---- C:\Windows\assembly
2010-08-13 17:49:18 ----D---- C:\Windows\winsxs
2010-08-13 17:36:24 ----D---- C:\Windows\system32\migration
2010-08-13 17:36:24 ----D---- C:\Program Files\Internet Explorer
2010-08-13 17:36:23 ----D---- C:\Program Files\Movie Maker
2010-08-13 17:36:22 ----D---- C:\Windows\system32\drivers
2010-08-13 15:55:50 ----D---- C:\Users\Sobolovi\AppData\Roaming\vlc
2010-08-13 09:25:27 ----D---- C:\Program Files\Movie Maker 2.6
2010-08-13 09:25:05 ----D---- C:\Windows\system32\catroot
2010-08-13 09:25:00 ----D---- C:\Program Files\Windows Mail
2010-08-12 08:15:47 ----D---- C:\Windows\system32\catroot2
2010-08-09 11:23:11 ----D---- C:\Petr
2010-08-09 11:22:34 ----D---- C:\ProgramData\CanonIJPLM
2010-08-08 19:34:18 ----D---- C:\Radana
2010-08-03 20:09:31 ----A---- C:\Windows\system32\mrt.exe
2010-07-27 15:34:17 ----D---- C:\Users\Sobolovi\AppData\Roaming\Winamp
2010-07-26 19:42:08 ----D---- C:\Windows\rescache
2010-07-26 19:24:05 ----D---- C:\Windows\system32\cs-CZ
2010-07-26 18:53:02 ----D---- C:\Users\Sobolovi\AppData\Roaming\PC Suite
2010-07-26 18:51:55 ----D---- C:\Windows\system32\drivers\UMDF
2010-07-26 18:51:54 ----D---- C:\ProgramData\PC Suite
2010-07-26 18:43:08 ----D---- C:\Users\Sobolovi\AppData\Roaming\Nokia
2010-07-26 18:28:50 ----D---- C:\Program Files\Nokia
2010-07-26 18:28:09 ----RD---- C:\Program Files
2010-07-26 18:28:05 ----DC---- C:\Windows\system32\DRVSTORE
2010-07-26 18:26:12 ----D---- C:\ProgramData\Installations
2010-07-20 16:58:15 ----D---- C:\Hry
2010-07-17 16:07:08 ----D---- C:\Users\Sobolovi\AppData\Roaming\dvdcss
2010-07-17 05:00:04 ----A---- C:\Windows\system32\deployJava1.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-03-23 691696]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-11-25 23120]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 nltdi;nltdi; \??\C:\Windows\system32\drivers\nltdi.sys [2007-04-23 81688]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-09-15 53328]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2010-08-16 16608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-09-09 2167128]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2008-07-08 1050656]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2008-09-24 45600]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-09-28 9509832]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2008-08-25 15872]
R3 WudfPf;User Mode Driver Frameworks Platform Driver; C:\Windows\system32\drivers\WudfPf.sys [2009-07-14 92672]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2009-07-14 132224]
S3 aqtxhsq0;aqtxhsq0; C:\Windows\system32\drivers\aqtxhsq0.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2010-02-26 18176]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2010-02-26 22528]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-02-26 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-04-11 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-02-26 8192]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Avast4\ashServ.exe [2009-11-25 138680]
R2 GEST Service;GEST Service for program management.; C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe [2008-08-08 80392]
R2 IJPLMSVC;Inkjet Printer/Scanner Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2008-01-22 103808]
R2 nlsvc;NetLimiter; C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe [2007-04-23 491520]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-27 215656]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2009-11-29 75064]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Avast4\ashWebSv.exe [2009-11-25 352920]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-12-17 135664]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe [2008-05-02 121360]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------

[vyosek]

Zdravim a pekne rano preji

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

• Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
• Vložte do PC vsechny USB klice (flash disky, ext.disky apod.)
• Pokud mate Win XP spustte pod uctem Spravce\Administratora
• Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
• Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
• Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
• Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
• Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
• Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte

[Ondra16]

Děkuji za pomoc, zde je log z Combofixu:

ComboFix 10-08-16.04 - Sobolovi 17.08.2010 19:00:08.2.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.2558.1290 [GMT 2:00]
Spuštěný z: c:\users\Sobolovi\Desktop\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\Sobolovi\AppData\Roaming\inst.exe

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-07-17 do 2010-08-17 )))))))))))))))))))))))))))))))
.

2010-08-17 17:07 . 2010-08-17 17:07 -------- d-----w- c:\users\Sobolovi\AppData\Local\temp
2010-08-17 17:07 . 2010-08-17 17:07 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-08-17 17:07 . 2010-08-17 17:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-08-16 09:29 . 2010-08-16 09:29 -------- d-----w- C:\rsit
2010-08-12 06:15 . 2010-06-16 16:04 905088 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-07-26 16:52 . 2009-07-14 17:45 132224 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2010-07-26 16:52 . 2009-07-14 17:48 567808 ----a-w- c:\windows\system32\WUDFx.dll
2010-07-26 16:52 . 2009-07-14 17:48 64512 ----a-w- c:\windows\system32\WUDFSvc.dll
2010-07-26 16:52 . 2009-07-14 17:48 39936 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2010-07-26 16:52 . 2009-07-14 17:48 162304 ----a-w- c:\windows\system32\WUDFPlatform.dll
2010-07-26 16:52 . 2009-07-14 17:45 92672 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2010-07-26 16:52 . 2009-07-14 17:45 195584 ----a-w- c:\windows\system32\WUDFHost.exe
2010-07-26 16:29 . 2010-07-26 16:29 -------- d-----w- c:\users\Sobolovi\{21f838b3-9937-4c9c-a79b-61a4b840d41d}
2010-07-26 16:29 . 2010-07-26 16:29 -------- d-----w- c:\program files\Common Files\PCSuite
2010-07-26 16:28 . 2010-07-26 16:29 -------- d-----w- c:\program files\Common Files\Nokia
2010-07-26 16:28 . 2010-07-26 16:28 -------- d-----w- c:\program files\DIFX
2010-07-26 16:28 . 2008-08-26 08:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2010-07-26 16:27 . 2010-07-26 16:27 -------- d-----w- c:\program files\PC Connectivity Solution
2010-07-26 16:26 . 2010-07-26 16:22 36684048 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Nokia_PC_Suite_cze_web.exe
2010-07-26 16:26 . 2010-07-26 16:26 95232 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\pcswpcsi.exe
2010-07-26 16:26 . 2010-07-26 16:26 8192 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstCCD.exe
2010-07-26 16:26 . 2010-07-26 16:26 61440 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-07-26 16:26 . 2010-07-26 16:26 10240 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCS.exe

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-17 17:03 . 2008-01-21 06:46 598594 ----a-w- c:\windows\system32\perfh005.dat
2010-08-17 17:03 . 2008-01-21 06:46 114786 ----a-w- c:\windows\system32\perfc005.dat
2010-08-17 16:56 . 2009-11-29 13:36 16608 ----a-w- c:\windows\gdrv.sys
2010-08-17 16:56 . 2009-11-29 16:49 35180 ----a-w- c:\programdata\nvModes.dat
2010-08-17 16:54 . 2009-11-29 14:38 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\uTorrent
2010-08-17 16:54 . 2009-11-29 16:30 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\Skype
2010-08-17 16:12 . 2010-06-22 16:25 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\vlc
2010-08-17 14:02 . 2009-11-29 16:32 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\skypePM
2010-08-16 09:29 . 2010-03-21 14:47 -------- d-----w- c:\program files\trend micro
2010-08-14 07:56 . 2009-11-30 20:27 -------- d-----w- c:\program files\Java
2010-08-13 07:25 . 2010-04-01 10:44 -------- d-----w- c:\program files\Movie Maker 2.6
2010-08-13 07:25 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-08-09 09:22 . 2009-11-30 15:52 -------- d-----w- c:\programdata\CanonIJPLM
2010-07-27 13:34 . 2009-11-29 15:46 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\Winamp
2010-07-26 17:26 . 2010-07-26 17:26 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
2010-07-26 16:53 . 2010-06-16 19:07 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\PC Suite
2010-07-26 16:51 . 2010-06-16 19:07 -------- d-----w- c:\programdata\PC Suite
2010-07-26 16:43 . 2010-06-16 19:07 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\Nokia
2010-07-26 16:28 . 2010-06-16 19:02 -------- d-----w- c:\program files\Nokia
2010-07-26 16:26 . 2010-06-16 19:01 -------- d-----w- c:\programdata\Installations
2010-07-17 14:07 . 2010-06-22 16:25 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\dvdcss
2010-07-17 03:00 . 2010-05-07 13:46 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-15 06:39 . 2009-11-29 15:45 -------- d-----w- c:\program files\GomPlayer
2010-07-11 11:24 . 2010-01-03 18:28 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\Media Player Classic
2010-07-11 11:22 . 2010-07-11 11:22 -------- d-----w- c:\program files\CCleaner
2010-07-05 17:30 . 2010-07-05 17:30 47360 ----a-w- c:\users\Sobolovi\AppData\Roaming\pcouffin.sys
2010-07-05 17:30 . 2010-07-05 17:30 47360 ----a-w- c:\users\Sobolovi\AppData\Roaming\pcouffin.sys
2010-07-05 17:30 . 2010-07-05 17:30 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\Vso
2010-07-05 17:19 . 2010-02-27 17:37 -------- d-----w- c:\program files\SUPER
2010-07-04 19:30 . 2010-07-04 19:30 -------- d-----w- c:\program files\DVD Decrypter
2010-07-04 10:39 . 2010-03-01 19:01 -------- d-----w- c:\users\Sobolovi\AppData\Roaming\Audacity
2010-07-04 09:13 . 2009-11-30 20:10 -------- d-----w- c:\program files\uTorrent
2010-07-02 17:11 . 2010-07-02 17:11 -------- d-----w- c:\program files\AviSynth 2.5
2010-07-02 17:09 . 2010-01-07 16:24 -------- d-----w- c:\program files\Common Files\AVSMedia
2010-07-01 11:21 . 2010-07-01 11:21 -------- d-----w- c:\program files\3CXPhone
2010-07-01 09:08 . 2009-11-29 17:44 138968 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-07-01 09:07 . 2009-11-29 17:44 214592 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-06-30 08:36 . 2010-06-30 08:36 -------- d-----w- c:\program files\Ashampoo Burning Studio 6 FREE
2010-06-30 08:34 . 2009-11-29 15:01 -------- d-----w- c:\program files\Revo Uninstaller
2010-06-29 15:18 . 2009-11-29 17:44 139152 ----a-w- c:\users\Sobolovi\AppData\Roaming\PnkBstrK.sys
2010-06-29 15:18 . 2009-11-29 17:44 139152 ----a-w- c:\users\Sobolovi\AppData\Roaming\PnkBstrK.sys
2010-06-29 15:18 . 2010-06-29 15:18 794408 ----a-w- c:\windows\system32\pbsvc.exe
2010-06-26 06:05 . 2010-08-12 06:16 916480 ----a-w- c:\windows\system32\wininet.dll
2010-06-26 06:02 . 2010-08-12 06:16 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-06-26 06:02 . 2010-08-12 06:16 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-06-26 04:25 . 2010-08-12 06:16 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2010-06-22 16:24 . 2010-06-22 16:24 -------- d-----w- c:\program files\VideoLAN
2010-06-21 17:18 . 2009-11-28 19:36 680 ----a-w- c:\users\Sobolovi\AppData\Local\d3d9caps.dat
2010-06-21 13:37 . 2010-08-12 06:16 2037760 ----a-w- c:\windows\system32\win32k.sys
2010-06-18 17:31 . 2010-08-12 06:16 36864 ----a-w- c:\windows\system32\rtutils.dll
2010-06-18 15:04 . 2010-08-12 06:16 302080 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-18 15:04 . 2010-08-12 06:16 144896 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-06-16 19:01 . 2010-06-16 19:01 95232 ----a-w- c:\programdata\Installations\{18756A46-652E-4ED4-A029-C4940D59F09B}\Installer\CommonCustomActions\pcswpcsi.exe
2010-06-16 19:01 . 2010-06-16 19:01 8192 ----a-w- c:\programdata\Installations\{18756A46-652E-4ED4-A029-C4940D59F09B}\Installer\CommonCustomActions\UninstCCD.exe
2010-06-16 19:01 . 2010-06-16 19:01 61440 ----a-w- c:\programdata\Installations\{18756A46-652E-4ED4-A029-C4940D59F09B}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-06-16 19:01 . 2010-06-16 19:01 10240 ----a-w- c:\programdata\Installations\{18756A46-652E-4ED4-A029-C4940D59F09B}\Installer\CommonCustomActions\UninstPCS.exe
2010-06-16 19:00 . 2010-06-16 19:01 36613936 ----a-w- c:\programdata\Installations\{18756A46-652E-4ED4-A029-C4940D59F09B}\Nokia_PC_Suite_cze_web.exe
2010-06-11 16:16 . 2010-08-12 06:16 274944 ----a-w- c:\windows\system32\schannel.dll
2010-06-11 16:15 . 2010-08-12 06:16 1248768 ----a-w- c:\windows\system32\msxml3.dll
2010-06-08 17:35 . 2010-08-12 06:16 3548040 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-06-08 17:35 . 2010-08-12 06:16 3600768 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-05-27 20:08 . 2010-08-12 06:16 81920 ----a-w- c:\windows\system32\iccvid.dll
2010-05-26 17:06 . 2010-06-10 13:40 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-05-26 14:47 . 2010-06-10 13:40 289792 ----a-w- c:\windows\system32\atmfd.dll
2010-05-21 12:14 . 2009-11-29 14:00 221568 ------w- c:\windows\system32\MpSigStub.exe
2006-05-03 10:06 . 2010-02-27 17:37 163328 --sh--r- c:\windows\System32\flvDX.dll
2007-02-21 11:47 . 2010-02-27 17:37 31232 --sh--r- c:\windows\System32\msfDX.dll
2008-03-16 13:30 . 2010-02-27 17:37 216064 --sh--r- c:\windows\System32\nbDX.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200]
"PC Suite Tray"="c:\petr\Nokia PC Suite 7\PCSuite.exe" [2010-05-14 1479680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"RtHDVCpl"="RtHDVCpl.exe" [2008-09-09 6281760]
"avast!"="c:\progra~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-02-29 76304]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]
"USBToolTip"="c:\progra~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe" [2007-02-20 199752]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech Desktop Messenger.lnk - c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2009-11-29 67128]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-4-5 805392]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):cf,7a,72,17,86,75,ca,01

R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2009-12-17 135664]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-03-23 691696]
S1 aswSP;avast! Self Protection; [x]
S1 nltdi;nltdi;c:\windows\system32\drivers\nltdi.sys [2007-04-23 81688]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2009-09-15 53328]
S2 GEST Service;GEST Service for program management.;c:\program files\GIGABYTE\EnergySaver\GSvr.exe [2008-08-08 80392]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2008-09-24 45600]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Obsah adresáře 'Naplánované úlohy'

2010-08-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-17 19:23]

2010-08-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-17 19:23]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.volny.cz/
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
FF - ProfilePath - c:\users\Sobolovi\AppData\Roaming\Mozilla\Firefox\Profiles\m80pbj08.default\
FF - prefs.js: browser.startup.homepage - www.csfd.cz
FF - component: c:\petr\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
FF - component: c:\program files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\users\Sobolovi\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
SafeBoot-WudfPf
SafeBoot-WudfRd



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-17 19:07
Windows 6.0.6002 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Celkový čas: 2010-08-17 19:09:02
ComboFix-quarantined-files.txt 2010-08-17 17:09

Před spuštěním: Volných bajtů: 107 412 975 616
Po spuštění: Volných bajtů: 107 388 907 520

- - End Of File - - 05EF1ECC76FC3DADFCE7497DA2E9DD10

[vyosek]

Jedna polozka smazana, zmenilo se neco

[Ondra16]

Počítač funguje dobře, nevypadá to na žádnou komplikaci. Jen jsem se chtěl ujistit, jestli v tom není vir.

[vyosek]

Tak v predmetu mate, ze je zpomaleny - stav se zlepsil

[Ondra16]

Ano, je to rychlejší.

[vyosek]

Odinstalujte Combofix

• Start - Spustit (nebo pouzijte klavesobou zkratku Win+R)
• Napiste ComboFix /Uninstall
• Stisknete Enter
• Tohle smaze Combofix a jeho slozky

T-Cleaner http://sweb.cz/Marinus/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis), pri instalaci dejte fajfku pryc u yahoo toolbaru
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za 14 dni

Doporucuji provest defragmentaci disku

• Nejjednodussi (ale nejmene ucinny) zpusob je pomoci utility ve windowsech
  • Kliknete na Start a pote Spustit, pripadne pouzijte klavesou zkratku Win+R
  • Vyskoci na Vas okenko, do ktereho zkopirujte text nize

  • Kód: Vybrat vše

    dfrg.msc

  • Kliknete na OK
• Dalsi moznosti (a mnou doporucenou) je pres programek Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
  • Program stahnete, nainstalujte (dejte fajfku pryc u yahoo toolbaru) a spustte
  • Kliknete na Analyzovat
  • Pokud je ve sloupci Fragmentováno vice jak 5%, doporucuji provest defragmentaci (klik na Defragmentovat)
  • Postup provedte se vsemi disky
• Posledni moznost je pres jednoduchy programek JKDefrag http://www.stahuj.centrum.cz/utility_a_ ... /jkdefrag/
  • Vyhodou programku je, ze se neinstaluje
  • Staci tedy jen stahnout dle verze vaseho OS a rozbalit
  • Nasledne spustit pomoci souboru JKDefrag pripadne JKDefrag64
  • Probehne analyza disku a nasledne i defragmentace

Vlozte novy log ze RSITu

[Ondra16]

Děkuji, za skvělý nástroj na defragmentaci, opravdu mi to pomohlo. Jinak tady máte log z Rsitu:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Sobolovi at 2010-08-20 22:33:21
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 210 GB (29%) free of 715 GB
Total RAM: 2558 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:33:27, on 20.8.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Avast4\ashDisp.exe
C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\NetLimiter 2 Monitor\NLClient.exe
C:\Program Files\Winamp\winamp.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Ondra\Staženo\RSIT.exe
C:\Program Files\trend micro\Sobolovi.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.volny.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\Windows\System32\dvmurl.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Petr\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Avast4\ashWebSv.exe
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Inkjet Printer/Scanner Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: NetLimiter (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 5648 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-04 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-09-09 6281760]
"avast!"=C:\PROGRA~1\Avast4\ashDisp.exe [2009-11-25 81000]
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2008-02-29 76304]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2005-08-11 81920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"PC Suite Tray"=C:\Petr\Nokia PC Suite 7\PCSuite.exe [2010-05-14 1479680]
"ISUSPM Startup"=C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2005-08-11 249856]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-08-20 22:33:21 ----D---- C:\rsit
2010-08-20 14:04:26 ----D---- C:\Program Files\Defraggler
2010-08-19 14:09:18 ----D---- C:\Users\Sobolovi\AppData\Roaming\gtk-2.0
2010-08-19 13:17:59 ----D---- C:\Users\Sobolovi\AppData\Roaming\Corel
2010-08-19 13:16:22 ----D---- C:\Program Files\GIMP-2.0
2010-08-19 13:12:55 ----D---- C:\ProgramData\InstallShield
2010-08-19 13:11:09 ----D---- C:\Program Files\Corel
2010-08-19 13:11:09 ----D---- C:\Program Files\Common Files\Corel
2010-08-17 19:09:07 ----SHD---- C:\$RECYCLE.BIN
2010-08-14 09:56:53 ----D---- C:\Config.Msi
2010-08-14 09:56:31 ----A---- C:\Windows\system32\javaws.exe
2010-08-14 09:56:31 ----A---- C:\Windows\system32\javaw.exe
2010-08-14 09:56:31 ----A---- C:\Windows\system32\java.exe
2010-08-12 08:16:26 ----A---- C:\Windows\system32\schannel.dll
2010-08-12 08:16:25 ----A---- C:\Windows\system32\iccvid.dll
2010-08-12 08:16:23 ----A---- C:\Windows\system32\mshtml.dll
2010-08-12 08:16:23 ----A---- C:\Windows\system32\iertutil.dll
2010-08-12 08:16:23 ----A---- C:\Windows\system32\ieframe.dll
2010-08-12 08:16:22 ----A---- C:\Windows\system32\urlmon.dll
2010-08-12 08:16:22 ----A---- C:\Windows\system32\msfeeds.dll
2010-08-12 08:16:22 ----A---- C:\Windows\system32\ie4uinit.exe
2010-08-12 08:16:21 ----A---- C:\Windows\system32\wininet.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\occache.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\mstime.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\msfeedssync.exe
2010-08-12 08:16:21 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\jsproxy.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\ieUnatt.exe
2010-08-12 08:16:21 ----A---- C:\Windows\system32\ieui.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\iesysprep.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\iesetup.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\iernonce.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\iepeers.dll
2010-08-12 08:16:21 ----A---- C:\Windows\system32\iedkcs32.dll
2010-08-12 08:16:17 ----A---- C:\Windows\system32\win32k.sys
2010-08-12 08:16:13 ----A---- C:\Windows\system32\rtutils.dll
2010-08-12 08:16:05 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-08-12 08:16:05 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-08-12 08:16:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-08-12 08:16:03 ----A---- C:\Windows\system32\drivers\srv.sys
2010-08-12 08:16:02 ----A---- C:\Windows\system32\msxml3.dll
2010-08-12 08:15:59 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-08-08 10:30:19 ----A---- C:\Windows\system32\shell32.dll
2010-07-26 18:52:04 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2010-07-26 18:52:03 ----A---- C:\Windows\system32\WUDFx.dll
2010-07-26 18:52:03 ----A---- C:\Windows\system32\WUDFSvc.dll
2010-07-26 18:52:03 ----A---- C:\Windows\system32\WUDFPlatform.dll
2010-07-26 18:52:03 ----A---- C:\Windows\system32\WUDFHost.exe
2010-07-26 18:52:03 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2010-07-26 18:52:03 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2010-07-26 18:29:02 ----D---- C:\Program Files\Common Files\PCSuite
2010-07-26 18:28:57 ----D---- C:\Program Files\Common Files\Nokia
2010-07-26 18:28:09 ----D---- C:\Program Files\DIFX
2010-07-26 18:28:05 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2010-07-26 18:27:13 ----D---- C:\Program Files\PC Connectivity Solution

======List of files/folders modified in the last 1 months======

2010-08-20 22:33:27 ----D---- C:\Windows\Prefetch
2010-08-20 22:33:23 ----D---- C:\Windows\Temp
2010-08-20 22:33:21 ----D---- C:\Program Files\trend micro
2010-08-20 22:30:52 ----SHD---- C:\Windows\Installer
2010-08-20 19:03:24 ----SHD---- C:\System Volume Information
2010-08-20 14:04:26 ----RD---- C:\Program Files
2010-08-20 12:07:48 ----D---- C:\Windows
2010-08-20 10:44:29 ----D---- C:\Windows\System32
2010-08-20 10:44:29 ----D---- C:\Windows\inf
2010-08-20 10:44:29 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-08-20 10:21:53 ----D---- C:\Petr
2010-08-20 10:14:21 ----D---- C:\Program Files\uTorrent
2010-08-19 23:34:31 ----D---- C:\Users\Sobolovi\AppData\Roaming\Skype
2010-08-19 23:34:29 ----D---- C:\Users\Sobolovi\AppData\Roaming\uTorrent
2010-08-19 21:50:17 ----D---- C:\Windows\ERDNT
2010-08-19 16:04:45 ----D---- C:\Users\Sobolovi\AppData\Roaming\skypePM
2010-08-19 13:12:55 ----D---- C:\ProgramData
2010-08-19 13:12:53 ----SD---- C:\Windows\Downloaded Program Files
2010-08-19 13:12:53 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-19 13:12:35 ----D---- C:\Program Files\Common Files\microsoft shared
2010-08-19 13:12:35 ----D---- C:\Program Files\Common Files\DESIGNER
2010-08-19 13:11:55 ----D---- C:\Windows\winsxs
2010-08-19 13:11:28 ----RSD---- C:\Windows\Fonts
2010-08-19 13:11:09 ----D---- C:\Program Files\Common Files
2010-08-19 13:06:58 ----D---- C:\Users\Sobolovi\AppData\Roaming\vlc
2010-08-19 13:02:21 ----D---- C:\Users\Sobolovi\AppData\Roaming\dvdcss
2010-08-17 19:07:31 ----A---- C:\Windows\system.ini
2010-08-17 19:07:25 ----D---- C:\Windows\system32\drivers\etc
2010-08-17 19:04:22 ----D---- C:\Windows\system32\drivers
2010-08-17 19:04:22 ----D---- C:\Windows\AppPatch
2010-08-14 23:00:43 ----D---- C:\Windows\system32\WDI
2010-08-14 10:27:46 ----D---- C:\Windows\Debug
2010-08-14 09:56:29 ----D---- C:\Program Files\Java
2010-08-13 18:01:21 ----D---- C:\Windows\Microsoft.NET
2010-08-13 18:01:16 ----RSD---- C:\Windows\assembly
2010-08-13 17:36:24 ----D---- C:\Windows\system32\migration
2010-08-13 17:36:24 ----D---- C:\Program Files\Internet Explorer
2010-08-13 17:36:23 ----D---- C:\Program Files\Movie Maker
2010-08-13 09:25:27 ----D---- C:\Program Files\Movie Maker 2.6
2010-08-13 09:25:05 ----D---- C:\Windows\system32\catroot
2010-08-13 09:25:00 ----D---- C:\Program Files\Windows Mail
2010-08-12 08:15:47 ----D---- C:\Windows\system32\catroot2
2010-08-09 11:22:34 ----D---- C:\ProgramData\CanonIJPLM
2010-08-08 19:34:18 ----D---- C:\Radana
2010-08-03 20:09:31 ----A---- C:\Windows\system32\mrt.exe
2010-07-27 15:34:17 ----D---- C:\Users\Sobolovi\AppData\Roaming\Winamp
2010-07-26 19:42:08 ----D---- C:\Windows\rescache
2010-07-26 19:24:05 ----D---- C:\Windows\system32\cs-CZ
2010-07-26 18:53:02 ----D---- C:\Users\Sobolovi\AppData\Roaming\PC Suite
2010-07-26 18:51:55 ----D---- C:\Windows\system32\drivers\UMDF
2010-07-26 18:51:54 ----D---- C:\ProgramData\PC Suite
2010-07-26 18:43:08 ----D---- C:\Users\Sobolovi\AppData\Roaming\Nokia
2010-07-26 18:28:50 ----D---- C:\Program Files\Nokia
2010-07-26 18:28:05 ----DC---- C:\Windows\system32\DRVSTORE
2010-07-26 18:26:12 ----D---- C:\ProgramData\Installations

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-03-23 691696]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-11-25 23120]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 nltdi;nltdi; \??\C:\Windows\system32\drivers\nltdi.sys [2007-04-23 81688]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-09-15 53328]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2010-08-20 16608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-09-09 2167128]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2008-07-08 1050656]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2008-09-24 45600]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-09-28 9509832]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2008-08-25 15872]
R3 WudfPf;User Mode Driver Frameworks Platform Driver; C:\Windows\system32\drivers\WudfPf.sys [2009-07-14 92672]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2009-07-14 132224]
S3 aw6so1qy;aw6so1qy; C:\Windows\system32\drivers\aw6so1qy.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2010-02-26 18176]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2010-02-26 22528]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-02-26 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-04-11 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-02-26 8192]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Avast4\ashServ.exe [2009-11-25 138680]
R2 GEST Service;GEST Service for program management.; C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe [2008-08-08 80392]
R2 IJPLMSVC;Inkjet Printer/Scanner Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2008-01-22 103808]
R2 nlsvc;NetLimiter; C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe [2007-04-23 491520]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-27 215656]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2009-11-29 75064]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Avast4\ashWebSv.exe [2009-11-25 352920]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-12-17 135664]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe [2008-05-02 121360]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------

[vyosek]

Zdravim po delsi dobe
Omlouvam se za zpozdeni, ale jak jsem avizoval v podpise, byl jsem na srazu radcu fora

Kliknete na Start a pote Spustit, pripadne pouzijte klavesou zkratku Win+R

• Vyskoci na Vas okenko, do ktereho zkopirujte text nize

• Kód: Vybrat vše

  services.msc

• Kliknete na OK
• Najdete sluzby nize
• Služba Google Update
• U kazde provedte toto
  • Klik na ni pravym mysidlem a zvolit Vlastnosti
  • Nyní klik na Zastavit
  • Typ spousteni nastavit na Zakazano
  • Potvrdte kliknutim na OK

Rucne smazte tyto soubory

• C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

Otevrete si poznamkovy blok

• Start->spustit->notepad
• Vlozte text nize

• Kód: Vybrat vše

  Windows Registry Editor Version 5.00
  
  [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
  "{0063BF63-BFFF-4B8F-9D26-4267DF7F17DD}"=-
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  "Adobe Reader Speed Launcher"=-
  "Adobe ARM"=-
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  "DAEMON Tools Lite"=-
  "PC Suite Tray"=-
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
  "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=-

• Soubor ulozte jako oprava.reg
• Pri ukladani dejte ulozit jako typ Vsechny soubory (nastevni je uvedeno na obrazku nize)
• 
• Zavrit notepad a spustit dvojklikem oprava.reg
• Pripadny dotaz na zmenu registru potvrdte
• Okno jen problikne a opravi regsitry - soubor muzete smazat

Jinak log vypada OK

[Ondra16]

Udělal jsem vše podle vašeho návodu a opravdu to pomáhá. Moc děkuji o některých programech jsem vůbec nevěděl.

[vyosek]

Nemate zac, rad jsem pomohl Zase nekdy